Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-50971

A SQL injection vulnerability in print.php of Itsourcecode Construction Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the map_id parameter.

Published

2024-11-13T16:15:19.113

Last Modified

2024-11-18T20:35:06.803

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.2 (HIGH)

Weaknesses

Type: Primary
CWE-89
Type: Secondary
CWE-89

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	angeljudesuarez	construction_management_system	1.0	Yes

References

https://github.com/Akhlak2511/CVE-2024-50971 Third Party Advisory ([email protected])
https://itsourcecode.com/free-projects/php-project/construction-management-system-project-in-php-with-source-code/ Product ([email protected])